CEH Certification Training | Certified Ethical Hacker Training v10

CEH Certification Training | Certified Ethical Hacker Training v10

Course Delivery

This Course is available in the following format:

Request this course in a different delivery format

GSA Schedule 70 Saving for Government Customers

Course Overview:

CEH Certification Training | Certified Ethical Hacker Training v10 – Hands-on

Prepare for the CEH certification while learning the latest ethical hacking techniques with this CEH Certification Training | Certified Ethical Hacker Training v10.

Our most popular information security and hacking training covers the techniques used by malicious, black hat hackers with high energy lectures and hands-on lab exercises. While these hacking skills can be used for malicious purposes, this CEH Certification Training | Certified Ethical Hacker Training v10 class teaches you how to use the same hacking techniques to perform a white-hat, ethical hack, on your organization. You’ll leave with the ability to quantitatively assess and measure threats to information assets; and discover where your organization is most vulnerable to hacking in this CEH Certification Training | Certified Ethical Hacker Training v10 course.

The goal of this CEH Certification Training | Certified Ethical Hacker Training v10 course is to help you master an ethical hacking methodology that can be used in a penetration testing or ethical hacking situation. You walk out the door with ethical hacking skills that are highly in demand, as well as the internationally recognized Certified Ethical Hacker certification! This CEH Certification Training | Certified Ethical Hacker Training v10 course prepares you for EC-Council Certified Ethical Hacker exam 312-50.

Customize It:

• If you are familiar with some aspects of this CEH Certification Training | Certified Ethical Hacker Training v10 course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the CEH Certification Training | Certified Ethical Hacker Training v10 course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the CEH Certification Training | Certified Ethical Hacker Training v10 course in manner understandable to lay audiences.

Related Courses:

Cybersecurity Investigations and Network Forensics Analysis
Cyber Threats Detection and Mitigation Training

Audience / Target Group:

The target audience for this CEH Certification Training | Certified Ethical Hacker Training v10 course:

• Security officers
• Auditors
• Security professionals
• Site administrators
• Individuals concerned about the integrity of the network infrastructure

What You Will Learn:

Upon completing this CEH Certification Training | Certified Ethical Hacker Training v10 course, learners will be able to meet these objectives:

These are some of the many concepts you will learn to master during this hands on hacking course…
• Penetration testing methodologies
• Stealthy network recon
• Passive traffic identification
• Remote root vulnerability exploitation
• Privilege escalation hacking
• IPv6 Vulnerabilities
• Gaining remote access through a trojan
• Running shellcode in RAM vs. on disk
• Wireless insecurity
• Breaking IP-based ACLs via spoofing
• Abusing Windows named pipes for domain impersonation
• Evidence removal and anti-forensics
• Attacking network infrastructure devices
• Hacking by brute forcing remotely
• Hiding exploit payloads in jpeg and gif image files
• Hacking web applications
• Breaking into databases with SQL injection
• Cross-site scripting
• Hacking into Cisco routers
• Justifying a penetration test to management & customers

CEH Certification Training | Certified Ethical Hacker Training v10 – Course Syllabus:

Ethics and Legality

What is an Exploit?
The security functionality triangle
The attacker’s process
Passive reconnaissance
Active reconnaissance
Types of attacks
Categories of exploits
Goals attackers try to achieve
Ethical hackers and crackers – who are they
Self proclaimed ethical hacking
Hacking for a cause (Hacktivism)
Skills required for ethical hacking
Categories of Ethical Hackers
What do Ethical Hackers do?
Security evaluation plan
Types of Ethical Hacks
Testing Types
Ethical Hacking Report
Cyber Security Enhancement Act of 2002
Computer Crimes
Overview of US Federal Laws
Section 1029
Section 1030
Hacking Punishment

CEH Certification – Footprinting

What is Footprinting
Steps for gathering information
Hacking Tool: Sam Spade
Analyzing Whois output
Finding the address range of the network
Hacking Tool: NeoTrace
Visual Route
Visual Lookout
Hacking Tool: Smart Whois
Hacking Tool: eMailTracking Pro
Hacking Tool: MailTracking.com

CEH Certification – Scanning

Determining if the system is alive?
Active stack fingerprinting
Passive stack fingerprinting
Hacking Tool: Pinger
Hacking Tool: Friendly Pinger
Hacking Tool: WS_Ping_Pro
Hacking Tool: Netscan Tools Pro 2000
Hacking Tool: Hping2
Hacking Tool: KingPing
Hacking Tool: icmpenum
Hacking Tool: SNMP Scanner
Detecting Ping sweeps
ICMP Queries
Hacking Tool: netcraft.com
Port Scanning
TCPs 3-way handshake
TCP Scan types
Hacking Tool: IPEye
Hacking Tool: IPSECSCAN
Hacking Tool: nmap
Port Scan countermeasures
Hacking Tool: HTTrack Web Copier
Network Management Tools
SolarWinds Toolset
War Dialing
Hacking Tool: THC-Scan
Hacking Tool: PhoneSweep War Dialer
Hacking Tool: Telesweep
Hacking Tool: Queso
Hacking Tool: Cheops
Proxy Servers
Hacking Tool: SocksChain
Surf the web anonymously
TCP/IP through HTTP Tunneling
Hacking Tool: HTTPort
Hacking Tool: Tunneld
Hacking Tool: BackStealth

CEH Certification – Enumeration

What is Enumeration
NetBios Null Sessions
Null Session Countermeasures
NetBIOS Enumeration
Hacking Tool: DumpSec
Hacking Tool: Hyena
Hacking Tool: NAT
SNMP Enumertion
Hacking Tool: IP Network Browser
SNMP Enumeration Countermeasures
Windows 2000 DNS Zone transfer
Identifying Win2000 Accounts
Hacking Tool: User2SID
Hacking Tool: SID2User
Hacking Tool: Enum
Hacking Tool: UserInfo
Hacking Tool: GetAcct
Hacking Tool: smbbf
SMB Auditing Tools
Active Directory Enumeration
W2K Active Directory attack

CEH Certification – System Hacking

Administrator Password Guessing
Performing Automated Password Guessing
Defending Against Password Guessing
Monitoring Event Viewer Logs
Eavesdroppin on Network Password Exchange
Hacking Tool: L0phtCrack
Hacking Tool: KerbCrack
Privilege Escalation
Hacking Tool: GetAdmin
Hacking Tool: hk
Manual Password Cracking Algorithm
Automatic Password Cracking Algorithm
Password Types
Types of Password Attacks
Dictionary Attack
Brute Force Attack
Distributed Brute Force Attack
Password Change Interval
Hybrid Attack
Cracking Windows 2000 Passwords
Retrieving the SAM file
Redirecting SMB Logon to the Attacker
SMB Redirection
Hacking Tool: SMBRelay
Hacking Tool: SMBRelay2
Hacking Tool: pwdump2
Hacking Tool: SAMdump
Hacking Tool: C2MYAZZ
Win32 Create Local Admin User
Offline NT Password Resetter
Hacking Tool: psexec
Hacking Tool: remoxec
SMBRelay Man-in-the-Middle (MITM)
SMBRelay MITM Countermeasures
Hacking Tool: SMBGrinder
Hacking Tool: SMBDie
Hacking Tool: NBTDeputy
NetBIOS DoS Attack
Hacking Tool: nbname
Hacking Tool: John the Ripper
LanManager Hash
Password Cracking Countermeasures
Keystroke Logger
Hacking Tool: Spector
Hacking Tool: eBlaster
Hacking Tool: SpyAnywhere
Hacking Tool: IKS Software Logger
Hacking Tool: Fearless Key Logger
Hacking Tool: E-mail Keylogger
Hardware Tool: Hardware Key Logger
Hacking Tool: Rootkit
Planting Rootkit on Windows 2000 Machine
_rootkit_ embedded TCP/IP Stack
Rootkit Countermeasures
MD5 Checksum utility
Covering Tracks
Disabling Auditing
Clearing the Event Log
Hacking Tool: Elslave
Hacking Tool: Winzapper
Hacking Tool: Evidence Eliminator
Hidding Files
NTFS File Streaming
Hacking Tool: makestrm
NTFS Streams Countermeasures
Hacking Tool: ImageHide
Hacking Tool: BlindSide
Hacking Tool: MP3Stego
Hacking Tool: Snow
Hacking Tool: Camera/Shy
Steganography Detection
Hacking Tool: Stealth Files
Encrypted File System
Hacking Tool: dskprobe
Hacking Tool: EFSView
Buffer Overflows
Creating Buffer Overflow Exploit
Outlook Buffer Overflow
Hacking Tool: Outoutlook

CEH Certification – Trojans and Backdoors

What is a Trojan Horse?
Overt and Covert
Hacking Tool: QAZ
Hacking Tool: Tini
Hacking Tool: Netcat
Hacking Tool: Donald Dick
Hacking Tool: SubSeven
Hacking Tool: BackOrifice 2000
Back Oriffice Plug-ins
Hacking Tool: NetBus
ComputerSpy Key Logger
Hacking Tool: Beast Trojan
Hacking Tool: CyberSpy Telnet Trojan
Hacking Tool: SubRoot Telnet Trojan
Hacking Tool: LetMeRule
Hacking Tool: Graffiti
Hacking Tool: Silk Rope 2000
Hacking Tool: EliteWrap
Hacking Tool: IconPlus
Packaging Tool: Microsoft WordPad
Hacking Tool: Whack a Mole
Trojan Construction Kit
Writing Trojans in Java
Hacking Tool: FireKiller 2000
Covert Channels
ICMP Tunneling
Hacking Tool: Loki
Reverse WWW Shell
Backdoor Countermeasures
BO Startup and Registry Entries
NetBus Startup and Registry Keys
Port Monitoring Tools
Process Viewer
Inzider – Tracks Processes and Ports
Trojan Maker
Hacking Tool: Hard Disk Killer
Man-in-the-Middle Attack
Hacking Tool: dsniff
System File Verification

CEH Certification – Sniffers

What is a Sniffer?
Hacking Tool: Ethereal
Hacking Tool: Snort
Hacking Tool: WinDump
Hacking Tool: EtherPeek
Passive Sniffing
Active Sniffing
Hacking Tool: EtherFlood
How ARP Works?
Hacking Tool: ArpSpoof
Hacking Tool: DSniff
Hacking Tool: Macof
Hacking Tool: mailsnarf
Hacking Tool: URLsnarf
Hacking Tool: Webspy
Hacking Tool: Ettercap
Hacking Tool: WebMiTM
IP Restrictions Scanner
Hacking Tool: sTerm
Hacking Tool: Cain and Abel
Hacking Tool: Packet Crafter
Hacking Tool: SMAC
MAC Changer
ARP Spoofing Countermeasures
Hacking Tool: WinDNSSpoof
Hacking Tool: Distributed DNS Flooder
Hacking Tool: WinSniffer
Network Tool: IRIS
Network Tool: NetInterceptor
Hacking Tool: WinTCPKill

Denial of Service

What is Denial of Service Attack?
Types of DoS Attacks
How DoS Work?
What is DDoS?
Hacking Tool: Ping of Death
Hacking Tool: SSPing
Hacking Tool: Land
Hacking Tool: Smurf
Hacking Tool: SYN Flood
Hacking Tool: CPU Hog
Hacking Tool: Win Nuke
Hacking Tool: RPC Locator
Hacking Tool: Jolt2
Hacking Tool: Bubonic
Hacking Tool: Targa
Tools for Running DDoS Attacks
Hacking Tool: Trinoo
Hacking Tool: WinTrinoo
Hacking Tool: TFN
Hacking Tool: TFN2K
Hacking Tool: Stacheldraht
Hacking Tool: Shaft
Hacking Tool: mstream
DDoS Attack Sequence
Preventing DoS Attack
DoS Scanning Tools
Zombie Zapper

CEH Certification – Social Engineering

What is Social Engineering?
Art of Manipulation
Human Weakness
Common Types of Social Engineering
Human Based Impersonation
Important User
Tech Support
Third Party Authorization
In Person
Dumpster Diving
Shoulder Surfing
Computer Impersonation
Mail Attachments
Popup Windows
Website Faking
Reverse Social Engineering
Policies and Procedures
Social Engineering Security Policies
The Importance of Employee Education

Session Hijacking

What is Session Hijacking?
Session Hijacking Steps
Spoofing Vs Hijacking
Active Session Hijacking
Passive Session Hijacking
TCP Concepts – 3 way Handshake
Sequence Numbers
Sequence Number Example
Guessing the Sequence Numbers
Hacking Tool: Juggernaut
Hacking Tool: Hunt
Hacking Tool: TTYWatcher
Hacking Tool: IP Watcher
Hacking Tool: T-Sight
Remote TCP Session Reset Utility
Dangers Posed by Session Hijacking
Protection against Session Hijacking

Hacking Web Servers

Apache Vulnerability
Attacks against IIS
IIS Components
ISAPI DLL Buffer Overflows
IPP Printer Overflow
Oversized Print Requests
Hacking Tool: Jill32
Hacking Tool: IIS5-Koei
Hacking Tool: IIS5Hack
IPP Buffer Overflow Countermeasures
ISAPI DLL Source Disclosure
Defacing Web Pages
IIS Directory Traversal
Directory Listing
Clearing IIS Logs
Network Tool: LogAnalyzer
Attack Signature
Creating Internet Explorer (IE) Trojan
Hacking Tool: IISExploit
Hacking Tool: UnicodeUploader.pl
Hacking Tool: cmdasp.asp
Escalating Privilages on IIS
Hacking Tool: IISCrack.dll
Hacking Tool: ispc.exe
IIS WebDav Vulnerability
Hacking Tool: WB
RPC Exploit-GUI
Hacking Tool: DComExpl_UnixWin32
Hacking Tool: Plonk
Unspecified Executable Path Vulnerability
Hacking Tool: CleanIISLog
File System Traversal Countermeasures
Microsoft HotFix Problems
Cacls utility
Network Tool: Whisker
N-Stealth Scanner
Hacking Tool: WebInspect
Network Tool: Shadow Security Scanner

Web Application Vulnerabilities

Documenting the Application Structure
Manually Inspecting Applications
Using Google to Inspect Applications
Directory Structure
Hacking Tool: Instant Source
Java Classes and Applets
Hacking Tool: Jad
HTML Comments and Contents
Hacking Tool: Lynx
Hacking Tool: Wget
Hacking Tool: Black Widow
Hacking Tool: WebSleuth
Cross Side Scripting
Session Hijacking using XSS
Cookie Stealing
Hacking Tool: IEEN
Hacking Tool: IEflaw
Exposing Sensitive Data with Google

Web Based Password Cracking Techniques

Basic Authentication
Message Digest Authentication
NTLM Authentication
Certificate based Authentication
Digital Certificates
Microsoft Passport Authentication
Forms based Authentication
Creating Fake Certificates
Hacking Tool: WinSSLMiM
Password Guessing
Dfault Account Database
Hacking Tool: WebCracker
Hacking Tool: Brutus
Hacking Tool: ObiWan
Hacking Tool: Munga Bunga
Password dictionary Files
Attack Time
Hacking Tool: Variant
Hacking Tool: PassList
Query Strings
Post data
Hacking Tool: cURL
Stealing Cookies
Hacking Tool: CookieSpy
Hacking Tool: ReadCookies
Hacking Tool: SnadBoy

CEH Certification – SQL Injection

What is SQL Injection Vulnerability?
SQL Insertion Discovery
Blank sa Password
Simple Input Validation
SQL Injection
OLE DB Errors
blah’ or 1=1
Preventing SQL Injection
Database Specific SQL Injection
Hacking Tool: SQLDict
Hacking Tool: SQLExec
Hacking Tool: SQLbf
Hacking Tool: SQLSmack
Hacking Tool: SQL2.exe
Hacking Tool: Oracle Password Buster

Hacking Wireless Networks

802.11 Standards
What is WEP?
Finding WLANs
Cracking WEP keys
Sniffing Trafic
Wireless DoS Attacks
WLAN Scanners
WLAN Sniffers
MAC Sniffing
Access Point Spoofing
Securing Wireless Networks
Hacking Tool: NetTumbler
Hacking Tool: AirSnort
Hacking Tool: AiroPeek
Hacking Tool: WEP Cracker
Hacking Tool: Kismet
Hacking Tool: AirSnarf
WIDZ- Wireless IDS

Virus and Worms

I Love You
Pretty Park
Code Red Worm
W32/Opaserv Worm
Code Red
SQL Slammer
Batch File Virus Creator
How to write your own Virus?
Worm Construction Kits

Novell Hacking

Common accounts and passwords
Accessing password files
Password crackers
Netware Hacking Tools

Linux Hacking

Why Linux ?
Linux Basics
Compiling Programs in Linux
Scanning Networks
Mapping Networks
Password Cracking in Linux
Linux Vulnerabilities
A Pinger in Disguise
Session Hijacking
Linux Rootkits
Linux Security Countermeasures
IPChains and IPTables

IDS, Firewalls and Honeypots

Intrusion Detection System
System Integrity Verifiers
How are Intrusions Detected?
Anomaly Detection
Signature Recognition
How does IDS match Signatures with Incoming Traffic?
Protocol Stack Verification
Application Protocol Verification
What Happens after an IDS Detects an Attack?
IDS Software Vendors
Evading IDS (Techniques)
Complex IDS Evasion
Hacking Tool: fragrouter
Hacking Tool: TCPReplay
Hacking Tool: SideStep
Hacking Tool: NIDSbench
Hacking Tool: ADMutate
IDS Detection
Tools to Detect Packet Sniffers
Tools to inject strangely formatted packets onto the wire
Hacking Through Firewalls
Placing Backdoors through Firewalls
Hiding behind Covert Channels
Hacking Tool: Ncovert
What is a Honeypot?
Honeypots Evasion
Honeypots vendors
Hacking Tool: Honeyd

Buffer Overflows

What is a Buffer Overflow?
Assembly Language Basics
How to Detect Buffer Overflows in a Program?
Skills Required
CPU/OS Dependency
Understanding Stacks
Stack Based Buffer Overflows
Buffer Overflow Technical Implementation
Writing your own Buffer Overflow Exploit in C
Defense against Buffer Overflows
Type Checking Tools for Compiling Programs


What is PKI?
Digital Certificates
Encryption Cracking Techniques

Penetration Testing Methodologies

Whether you are looking for general information or have a specific question, we want to help!

Request More Information

Print Friendly, PDF & Email